Bugtraq: Re: ICMP Vulnerabilities

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: ICMP Vulnerabilities

From: Joachim Schipper <j.schipper () math uu nl>
Date: Sat, 9 Jul 2005 00:00:01 +0200

On Thu, Jul 07, 2005 at 05:02:40PM -0700, Dragos Ruiu wrote:

On Thursday, 7 July 2005 J. Oquendo wrote:

This isn't news news, I've been tinkering with something along
these lines since 1999


Well you may have known about the problem, but you didn't fix it.
The news isn't the problem, it's the FIX. The fix which people haven't
applied to their OS distributions yet.


On this note, does anyone know to what extent operating systems other
than OpenBSD are affected? The article lists FreeBSD and Linux as having
(partially) solved the issues; are the issues not named still
outstanding? Workaround? Patch?

Is Windows, once again, vulnerable? Cisco systems (seems to be the
case)?

                Joachim

By Date By Thread

Current thread:

ICMP vulnerabilities Theo de Raadt (Jul 07)
- Re: ICMP vulnerabilities J. Oquendo (Jul 07)
  - Re: ICMP vulnerabilities Bob Beck (Jul 08)
- <Possible follow-ups>
- Re: ICMP Vulnerabilities Dragos Ruiu (Jul 08)
  - Re: ICMP Vulnerabilities Joachim Schipper (Jul 09)